I double checked and no, you can't use Tspi_Key_CreateKey() to create identity keys. That calls the TPM function TPM_CreateWrapKey and at step 6 of the description it says:
1258 6. Validate key parameters 1259 a. keyInfo -> keyUsage MUST NOT be TPM_KEY_IDENTITY 1260 TPM_KEY_AUTHCHANGE. If it is, return TPM_INVALID_KEYUSAGE In other words, the new key type is not allowed to be TPM_KEY_IDENTITY. This is actually important for the TPM security model as TPM owner authorization is needed to create identity keys. Unauthorized software is not supposed to be able to create them. You say it worked before? Maybe you were using a TPM emulator which did not enforce this restriction. Maybe since your upgrade you got a newer version of the emulator that does enforce it, or maybe you are using the TPM hardware. Hal Finney On Mon, Jun 28, 2010 at 11:25 PM, waqar afridi <[email protected]> wrote: > I already have Done it and It Ran Successfully, I was using ubuntu 9.04 and > then I upgraded to Ubuntu 10.04 and It stoped working, I Have also reset my > TPM and due to this reason I used TPM Emulator.... > > On Tue, Jun 29, 2010 at 10:26 AM, Hal Finney <[email protected]> wrote: >> >> I don't think you can create an identity key using the CreateKey() >> function. You have to use CollateIdentityRequest(). >> >> Hal Finney >> >> On Monday, June 28, 2010, waqar afridi <[email protected]> wrote: >> > Hello all >> > >> > I am trying to created a utility that generates a TPM Quote (most of the >> > code was taken from test suites) but I am unable to execute the following >> > function >> > >> > >> > >> > >> > Tspi_Key_CreateKey(hIdentKey, hSRK, 0); >> > I have installed the Trousers and TPM tools from source, I also have TPM >> > hardware and TPM Emulator. >> > >> > > > > > -- > Waqar Afridi > ------------------------------------------------------------------------------ This SF.net email is sponsored by Sprint What will you do first with EVO, the first 4G phone? Visit sprint.com/first -- http://p.sf.net/sfu/sprint-com-first _______________________________________________ TrouSerS-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/trousers-users
